Browse all 9 CVE security advisories affecting CloudExplorer-Dev. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Cloudexplorer-dev is a cloud resource exploration tool designed for security professionals to analyze and manage cloud environments. Historically, it has been vulnerable to multiple remote code execution (RCE) and cross-site scripting (XSS) flaws, often stemming from improper input validation and insecure API endpoints. Privilege escalation vulnerabilities have also been prevalent, allowing unauthorized access to cloud resources. The tool has accumulated 9 CVEs to date, with several critical RCE issues enabling complete compromise of cloud environments. While no major public incidents have been documented, the consistent pattern of vulnerabilities suggests potential for significant security breaches if deployed without proper hardening and monitoring.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-44397 | CloudExplorer Lite permission bypass vulnerability — CloudExplorer-LiteCWE-287 | 7.5 | High | 2023-10-30 |
| CVE-2023-39519 | CloudExplorer Lite sensitive information leakage vulnerability — CloudExplorer-LiteCWE-200 | 7.5 | High | 2023-08-24 |
| CVE-2023-38692 | Command injection vulnerability in module management function in CloudExplorer Lite — CloudExplorer-LiteCWE-78 | 9.8 | Critical | 2023-08-04 |
| CVE-2023-34240 | Weak passwords allowed in cloudexplorer-lite — CloudExplorer-LiteCWE-521 | 6.5 | Medium | 2023-06-27 |
| CVE-2023-32316 | Users can add themselves to any organization in CloudExplorer Lite — CloudExplorer-LiteCWE-862 | 7.1 | High | 2023-05-26 |
| CVE-2023-32311 | The CloudExplorer Lite missing permissions check — CloudExplorer-LiteCWE-862 | 7.1 | High | 2023-05-26 |
This page lists every published CVE security advisory associated with CloudExplorer-Dev. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.